Horizontal Process Requirements for the Security Life-Cycle Management of IoT Products

This paper outlines cross-domain security process requirements for IoT manufacturers at a meta-level with an international focus. Its purpose is to identify fundamental processes for the three core security competences: prevention, detection and reaction.

By implementing these processes manufacturers may achieve basic security hygiene for their IoT products and organization. The requirements outlined here are in accordance to international standards addressing security. However, the paper is solely voluntary in its nature and does not determine the implementation of specific norms and standards. Manufacturers can choose how to fulfill these requirements.

The paper represents the current status of the ZVEI Horizontal Security Requirements project team and thus a common understanding and industry opinion of the ZVEI members. If there is a need for new (sectoral) process standards, we recommend this document for the minimum requirements that should be included in a standard mentioned above.. 

You may also be interested in:


Most visited pages


Read more

Industrie 4.0

Read more


Read more


Read more


Read more


Energiewende meets Industrie 4.0

Together with its partners in the DC-INDUSTRIE project, ZVEI is developing network management options for the future. The motto:…



Designing 5G for Industrial Use

5G allows machines to communicate with each other in real time, saving resources and energy through Edge Computing and Massive…

ZVEI explains RAMI 4.0 (Chinese subtitles)

To create a uniform basis for Industrie 4.0, ZVEI has teamed up with its partners to develop RAMI 4.0, the reference architecture…